$ rpki-client -vvf rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.mft File: D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.mft (raw, json) Hash identifier: PynIPwi/3hMODJPMh5eAW8KPDUkzWoEuXACc5II1E7I= Subject key identifier: 98:48:72:B3:8D:A6:5A:DB:1C:4A:CE:82:F1:85:AC:EC:48:F9:1C:75 Authority key identifier: D1:24:86:07:B0:DD:D0:A2:16:E8:D7:FA:C5:E2:C2:E7:77:0A:11:39 Certificate issuer: /CN=A91E5D610000/serialNumber=D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139 Certificate serial: 7A53149A33AD8E043D5CED0C0E091E1DA0EA64F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0SSGB7Dd0KIW6Nf6xeLC53cKETk.cer Subject info access: rsync://rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.mft Manifest number: 54 Signing time: Fri 09 May 2025 19:36:59 +0000 Manifest this update: Fri 09 May 2025 19:31:59 +0000 Manifest next update: Sat 10 May 2025 23:35:59 +0000 Files and hashes: 1: 3130332e3136352e3131312e302f32342d3234203d3e2034353338.roa (hash: NnfstyQr0WwXD8a2DVFe23HvYnVEBud3Hi4nXFGMMO4=) 2: A828E0147CD8DE9E7A474DCDF06AD96FB37738EE.cer (hash: f7exy09Qe6ik4aLqqKmpADRHOOTa550ov7CNAjQ9pWo=) 3: D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.crl (hash: GFigSnkWoknd73IuhnFgjyGa8th+owKn0JRXsbI/ovk=) 4: 3130332e3136352e3131302e302f32342d3234203d3e2034353338.roa (hash: +KbuVadS5EMXwvfdbw3xW30kEBRsR8uU/wUkr+aUcZU=) Validation: OK Signature path: rsync://rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.crl rsync://rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0SSGB7Dd0KIW6Nf6xeLC53cKETk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 23:35:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:53:14:9a:33:ad:8e:04:3d:5c:ed:0c:0e:09:1e:1d:a0:ea:64:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D610000, serialNumber=D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139 Validity Not Before: May 9 19:31:59 2025 GMT Not After : May 10 23:35:59 2025 GMT Subject: CN=984872B38DA65ADB1C4ACE82F185ACEC48F91C75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:7e:34:9d:05:fc:d1:f4:05:4e:a2:d2:48:13: ca:eb:cc:fe:98:a8:7e:2d:a9:14:d3:07:ff:49:6d: e0:dc:1e:af:97:6c:b3:bb:ea:61:f8:ac:55:9e:f7: d6:17:a1:87:4f:d7:ad:c2:ec:0d:c1:62:eb:a1:fc: 4d:a7:17:42:e3:c7:16:2e:6d:d5:29:34:01:87:fd: b6:3c:68:7e:9b:ad:c8:30:86:3c:d6:6f:c3:99:23: da:eb:90:49:99:46:e1:ac:a3:b2:83:3e:27:6e:99: 3d:07:24:f0:0c:31:5b:d5:04:44:3d:84:5b:5e:a5: e1:7b:d1:eb:eb:7a:cf:59:5b:2e:4a:7f:f5:d2:b3: d7:4f:f8:f2:6d:d4:5f:da:66:4a:7c:94:55:12:b4: a9:d0:79:54:d0:1f:9d:ba:20:70:42:44:2d:5b:8c: 81:56:78:69:4d:83:40:97:97:d6:c1:2a:1a:2e:f6: eb:8e:87:88:89:2b:9c:cd:d9:3a:8f:90:bd:31:54: 12:0d:a7:bd:06:1a:b2:22:83:7b:51:64:10:d6:86: 99:34:8b:d0:fd:41:af:65:fa:d0:ce:52:64:83:54: e0:17:3b:de:a1:38:72:6c:f2:3c:25:eb:6e:b3:69: 54:c3:15:0c:0f:ad:72:5f:e5:72:7e:37:df:ea:50: 92:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:48:72:B3:8D:A6:5A:DB:1C:4A:CE:82:F1:85:AC:EC:48:F9:1C:75 X509v3 Authority Key Identifier: keyid:D1:24:86:07:B0:DD:D0:A2:16:E8:D7:FA:C5:E2:C2:E7:77:0A:11:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0SSGB7Dd0KIW6Nf6xeLC53cKETk.cer Subject Information Access: Signed Object - URI:rsync://rpki.cernet.edu.cn/repo/cernet/1/D1248607B0DDD0A216E8D7FAC5E2C2E7770A1139.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0c:73:6e:16:39:6c:32:85:f8:8b:b2:d4:3d:94:9a:8b:6d:d7: d3:1c:09:bb:72:16:5e:da:51:56:bd:dc:53:78:2d:84:1f:c5: 67:66:8e:ec:fb:c4:cb:b2:34:91:92:d3:34:19:bb:28:aa:05: 24:78:26:9c:1a:bc:60:0b:6e:e7:7c:d9:c9:f9:12:d9:c7:7a: da:1d:e7:ee:6c:8b:ca:48:97:ce:d5:15:fc:b3:93:d8:20:e5: 7c:cb:bd:12:98:50:33:63:d9:f7:91:a7:3b:11:ce:51:b6:bc: 0f:e9:1d:dd:dd:4c:0b:51:17:94:e7:c2:e2:72:75:72:25:d8: 07:aa:7e:2c:d1:66:5c:23:75:73:07:b5:6a:f0:6e:70:12:7f: 6e:0f:cc:bb:39:a9:7e:a4:f3:c2:97:86:a9:28:55:f6:c4:fc: 92:39:62:f5:92:be:74:db:d3:d0:68:ab:66:06:eb:a1:62:c2: 5c:95:75:32:48:3b:c1:94:ed:5f:0b:a6:70:6d:89:08:5e:b6: 82:4c:62:42:8d:1d:34:bd:05:03:9e:49:cf:61:14:07:40:96: 17:29:17:f6:9b:1c:8c:df:46:f1:91:73:d5:04:7a:e2:81:13: dd:98:26:b1:2f:32:4a:45:87:2e:12:7d:68:64:3f:a2:53:ff: 71:82:ee:75 -----BEGIN CERTIFICATE----- MIIFEDCCA/igAwIBAgIUelMUmjOtjgQ9XO0MDgkeHaDqZPcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRTVENjEwMDAwMTEwLwYDVQQFEyhEMTI0ODYwN0Iw REREMEEyMTZFOEQ3RkFDNUUyQzJFNzc3MEExMTM5MB4XDTI1MDUwOTE5MzE1OVoX DTI1MDUxMDIzMzU1OVowMzExMC8GA1UEAxMoOTg0ODcyQjM4REE2NUFEQjFDNEFD RTgyRjE4NUFDRUM0OEY5MUM3NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANZ+NJ0F/NH0BU6i0kgTyuvM/piofi2pFNMH/0lt4Nwer5dss7vqYfisVZ73 1hehh0/XrcLsDcFi66H8TacXQuPHFi5t1Sk0AYf9tjxofputyDCGPNZvw5kj2uuQ SZlG4ayjsoM+J26ZPQck8AwxW9UERD2EW16l4XvR6+t6z1lbLkp/9dKz10/48m3U X9pmSnyUVRK0qdB5VNAfnbogcEJELVuMgVZ4aU2DQJeX1sEqGi72646HiIkrnM3Z Oo+QvTFUEg2nvQYasiKDe1FkENaGmTSL0P1Br2X60M5SZINU4Bc73qE4cmzyPCXr brNpVMMVDA+tcl/lcn433+pQkrsCAwEAAaOCAgMwggH/MB0GA1UdDgQWBBSYSHKz jaZa2xxKzoLxhazsSPkcdTAfBgNVHSMEGDAWgBTRJIYHsN3Qohbo1/rF4sLndwoR OTAOBgNVHQ8BAf8EBAMCB4AwZgYDVR0fBF8wXTBboFmgV4ZVcnN5bmM6Ly9ycGtp LmNlcm5ldC5lZHUuY24vcmVwby9jZXJuZXQvMS9EMTI0ODYwN0IwREREMEEyMTZF OEQ3RkFDNUUyQzJFNzc3MEExMTM5LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYB BQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1 ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi8wU1NHQjdEZDBLSVc2TmY2eGVMQzUz Y0tFVGsuY2VyMHEGCCsGAQUFBwELBGUwYzBhBggrBgEFBQcwC4ZVcnN5bmM6Ly9y cGtpLmNlcm5ldC5lZHUuY24vcmVwby9jZXJuZXQvMS9EMTI0ODYwN0IwREREMEEy MTZFOEQ3RkFDNUUyQzJFNzc3MEExMTM5Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADHNuFjlsMoX4i7LU PZSai23X0xwJu3IWXtpRVr3cU3gthB/FZ2aO7PvEy7I0kZLTNBm7KKoFJHgmnBq8 YAtu53zZyfkS2cd62h3n7myLykiXztUV/LOT2CDlfMu9EphQM2PZ95GnOxHOUba8 D+kd3d1MC1EXlOfC4nJ1ciXYB6p+LNFmXCN1cwe1avBucBJ/bg/MuzmpfqTzwpeG qShV9sT8kjli9ZK+dNvT0GirZgbroWLCXJV1Mkg7wZTtXwumcG2JCF62gkxiQo0d NL0FA55Jz2EUB0CWFykX9pscjN9G8ZFz1QR64oET3ZgmsS8ySkWHLhJ9aGQ/olP/ cYLudQ== -----END CERTIFICATE-----Generated at Sat May 10 08:17:01 2025 by rpki-client